Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

How to protect VMs that are on a different VNET on Azure Deep Security Manager (DSM) created via BYOL

    • Updated:
    • 26 Apr 2021
    • Product/Version:
    • Deep Security 12.0
    • Deep Security 20.0
    • Deep Security Azure Marketplace
    • Platform:
Summary

When you create a DSM environment and select BYOL, it will not allow you to put it in an existing resource group. It will only let you create new RG and this includes new VNET.
This article will help you create peering connection between DSM vNET and your existing VMs VNET.

 
The subnet of DSM vNET and VM vNET should not be overlapping, otherwise it will create IP conflict between VMs on 2 vNETS. As examples:
  • Subnet on DSM vNET is 10.4.0.0/16.
  • Subnet Vms vNET is 10.3.0.0/16.
 
Details
Public

Follow these steps to create peering connection between 2 vNETs via Azure portal.

  1. From the Azure portal, select Resource Group of DSMDSM VM. Click the Virtual network/subnet, and under Settings click Peerings.
  2. Click Add. Type the peering name, for example "DSM-to-VM-Inbound". Leave the rest as default.
  3. Under Remote Virtual Link Type the peering Link name, for example "VM-to-DSM-Inbound". This will serve as the connection link back to the DSM from VMs.
  4. Under Virtual Network drop down, select the VNET of the DSM.
  5. Click ADD.
  6. When you go back to DSM > Peerings , you should now see the peering connection that you created. When you go to VM > Peerings, you should also see the peering connection that you created.

    Module state

    Module state

  7. Test if you can ping or telnet the VMs from DSM (You may also need to allow required Inbound ports from NSG)
  8. Test That you can ping or telnet the DSM from the VM (port 4120, 4122, 4118).
  9. From this point, you should now be able to install and protect VMs that are on another VNET.
Premium
Internal
Partner
Rating:
Category:
Configure
Solution Id:
000286332
Feedback
Did this article help you?

Thank you for your feedback!


*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.